Hey everyone,
I've got a pretty simple project here, or at least it should be. **Please note: this project will lead to more work.** We're aiming to create a set of sites for hackers to practice on. Each site will have a different exploitable software or vulnerability, and the exploit should only be site-level (no server level vulnerabilities). If you look at the link below there is a list of vulnerabilities, an exploit for each one, and many have a download for the vulnerable version of the software... So all you have to do is install the vulnerable software. Don't worry about design or content, just the vulns and exploits. Just pick an exploit from the db then download and install the affected software. Simple as that.
<[login to view URL]>
Below are the specific requirements:
1) 20 sites, can use software like wordpress and joomla. As few databases as possible.
2) Different vulnerability for each site. Document the vulnerability and link to the relevant exploits, make sure it's exploitable.
3) MUST BE SITE LOCAL VULNERABILITY. NO SERVER PRIV ESCALATION ATTACKS.
I'm looking to get started with this right away, the first person I feel comfortable with gets the job. In addition to the cost I can offer a spectacular rating and review if the job is done well.